Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wgmsrZ1xLmGwSPf74mAt1V+eLqjLWKHxLKJWQFn4vlM=
Subject key identifier: F2:9E:63:E2:3E:38:23:0C:45:65:7D:A2:AE:3F:E0:CD:CA:E1:B1:F1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 10777D2F8E83148FC3A763EE175F114A7B598691
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:01 +0000
ROA not before: Mon 26 Sep 2022 06:55:01 +0000
ROA not after: Mon 25 Sep 2023 07:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:77:7d:2f:8e:83:14:8f:c3:a7:63:ee:17:5f:11:4a:7b:59:86:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:01 2022 GMT
Not After : Sep 25 07:00:01 2023 GMT
Subject: CN=F29E63E23E38230C45657DA2AE3FE0CDCAE1B1F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:8e:80:f6:a5:b8:1b:02:c6:21:07:33:9d:
0e:32:23:3e:b3:a0:4a:6e:71:ab:26:53:c8:40:e7:
ad:33:b4:89:27:0d:56:b0:46:29:99:a9:2d:45:9a:
81:1f:55:23:ae:1c:d4:42:7c:2b:8c:f0:f3:67:e4:
15:d3:b0:11:9a:98:ca:ca:2e:c8:25:e2:18:95:bd:
78:2d:8d:b3:8b:ed:7b:57:5f:65:ec:f7:9c:6b:2f:
24:80:46:07:90:f5:b4:00:cf:9a:d5:77:41:bb:77:
f2:09:56:70:95:05:dc:ee:6a:81:0f:72:da:79:44:
4d:88:28:00:53:8c:bc:4e:2b:f0:f9:f5:a1:5c:1f:
71:49:27:5a:c3:e1:74:cc:65:0e:8b:0a:55:bd:fb:
6a:8e:4e:86:51:de:78:02:15:a6:35:ab:98:09:77:
cf:3f:46:d9:7d:fe:9f:e1:3a:ab:bb:40:ab:27:3d:
c4:d5:87:eb:b1:75:40:7c:70:d5:46:2a:cf:37:32:
04:0d:f2:5f:a0:5c:ea:84:d9:fa:2e:0b:e2:07:43:
30:7c:72:9d:6c:0f:cc:9c:1f:72:8b:10:76:06:8d:
6e:7f:03:da:ea:21:d3:db:84:16:8d:dd:61:e5:84:
3f:c3:0f:8b:85:32:ff:14:10:97:ae:ea:09:83:f6:
71:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9E:63:E2:3E:38:23:0C:45:65:7D:A2:AE:3F:E0:CD:CA:E1:B1:F1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:a::/48
Signature Algorithm: sha256WithRSAEncryption
78:7a:26:53:4c:fc:54:24:bb:3b:1f:18:bb:46:fc:e9:cf:1f:
22:1e:8e:4f:0f:75:31:de:77:44:9e:db:13:d9:15:e1:c9:b2:
98:d1:99:38:da:a2:c9:d4:b3:cf:96:a4:7f:13:f1:80:32:80:
1d:02:91:1a:de:9a:f2:e3:ac:cd:97:ad:e3:00:e0:d7:ef:17:
2a:74:49:b4:23:35:19:9c:96:6b:c0:91:91:17:47:5d:c8:03:
c7:cb:07:a2:80:0b:e1:b0:bc:63:e8:51:5e:9e:01:2a:28:a1:
d2:5c:e7:a2:4f:a2:52:a2:5b:7d:d9:e5:c2:62:b0:09:2e:81:
84:97:59:64:7c:f7:4c:e9:05:04:60:26:7f:42:15:65:95:52:
1e:b7:76:cb:52:b3:80:61:c2:80:85:74:dd:d2:16:7e:2f:fe:
93:6d:ca:7e:38:52:55:b5:86:6c:c9:23:e2:10:f4:c2:d1:e0:
69:51:5e:89:40:1a:2e:e5:d3:ed:04:6d:e2:2e:06:b1:46:d5:
8e:2b:0d:49:26:a9:e1:f2:94:dc:eb:c6:c4:57:47:22:50:d0:
ae:30:d0:5e:b1:e8:25:ca:1f:e1:68:57:9b:23:d9:8a:ee:b3:
b8:e4:b1:3c:37:bf:cd:04:fe:c3:ab:f2:08:15:a9:bf:b8:e6:
20:bc:fe:c2
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUEHd9L46DFI/Dp2PuF18RSntZhpEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDFaFw0yMzA5MjUwNzAwMDFaMDMxMTAvBgNV
BAMTKEYyOUU2M0UyM0UzODIzMEM0NTY1N0RBMkFFM0ZFMENEQ0FFMUIxRjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDGY6A9qW4GwLGIQcznQ4yIz6z
oEpucasmU8hA560ztIknDVawRimZqS1FmoEfVSOuHNRCfCuM8PNn5BXTsBGamMrK
Lsgl4hiVvXgtjbOL7XtXX2Xs95xrLySARgeQ9bQAz5rVd0G7d/IJVnCVBdzuaoEP
ctp5RE2IKABTjLxOK/D59aFcH3FJJ1rD4XTMZQ6LClW9+2qOToZR3ngCFaY1q5gJ
d88/Rtl9/p/hOqu7QKsnPcTVh+uxdUB8cNVGKs83MgQN8l+gXOqE2fouC+IHQzB8
cp1sD8ycH3KLEHYGjW5/A9rqIdPbhBaN3WHlhD/DD4uFMv8UEJeu6gmD9nG1AgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQU8p5j4j44IwxFZX2irj/gzcrhsfEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjEzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAAKMA0G
CSqGSIb3DQEBCwUAA4IBAQB4eiZTTPxUJLs7Hxi7Rvzpzx8iHo5PD3Ux3ndEntsT
2RXhybKY0Zk42qLJ1LPPlqR/E/GAMoAdApEa3pry46zNl63jAODX7xcqdEm0IzUZ
nJZrwJGRF0ddyAPHyweigAvhsLxj6FFengEqKKHSXOeiT6JSolt92eXCYrAJLoGE
l1lkfPdM6QUEYCZ/QhVllVIet3bLUrOAYcKAhXTd0hZ+L/6Tbcp+OFJVtYZsySPi
EPTC0eBpUV6JQBou5dPtBG3iLgaxRtWOKw1JJqnh8pTc68bEV0ciUNCuMNBesegl
yh/haFebI9mK7rO45LE8N7/NBP7Dq/IIFam/uOYgvP7C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org